$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: Uw/0m30x7533ZHiOtQLj8lbuYxMcgIJNxg0LzCIFED0= Subject key identifier: F1:C9:2D:8B:02:51:89:A5:8F:5C:71:08:42:19:4A:F6:CB:74:7B:15 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 4A6FB511CF309B703B0B1EE6835F68CD0CC18D32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 02DE Signing time: Fri 22 Aug 2025 03:40:56 +0000 Manifest this update: Fri 22 Aug 2025 03:35:56 +0000 Manifest next update: Mon 25 Aug 2025 09:53:56 +0000 Files and hashes: 1: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: ta8cyJGAuX8M5px06fD7ixeqP65bXdztJIzRgtjjUTw=) 2: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: SaglbTs2Sm97iqGUTpHLhK4uFUxx2JxCBReDItgEQOA=) 3: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: QCnnhIdA2dWcwW/1aRG9WKtfNhO7jneciXmWhn+8o+A=) 4: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: uFvJDDnE+LzWscDNPWULjpdUKOX2mvB/YxTyjJbL490=) 5: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: DZhIHh+Q1/lFglHPCtQYtJARiOU+Khz/cuUC8LvdiAk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 09:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:6f:b5:11:cf:30:9b:70:3b:0b:1e:e6:83:5f:68:cd:0c:c1:8d:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Aug 22 03:35:56 2025 GMT Not After : Aug 25 09:53:56 2025 GMT Subject: CN=F1C92D8B025189A58F5C710842194AF6CB747B15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:19:1e:57:9c:e4:58:57:dd:95:ca:aa:a2:d4: bc:19:9a:3d:e4:41:f7:05:d9:fc:9b:79:32:05:0c: a4:ec:4e:04:b9:b1:1d:67:45:e5:e7:c8:09:38:97: 58:65:9f:fa:70:7f:f6:7f:49:df:99:b8:c2:72:f0: b4:09:82:08:9d:07:b6:ac:b2:d4:81:65:7b:f9:8c: 9c:42:9e:e1:8a:bd:03:b6:5e:eb:6c:e7:0c:d3:cc: c0:d0:4a:92:ac:f8:55:b8:d6:77:9b:ca:ee:d6:bb: 4e:fa:dc:cb:fa:18:71:29:55:a7:7c:a6:2b:b1:d2: bc:84:8b:49:0e:71:49:85:05:d0:81:a3:e6:f4:c4: 47:16:d1:5f:b0:d8:3f:97:cd:fa:a6:1b:4f:0c:3d: de:33:8e:1a:19:ce:d4:1e:86:8b:85:fb:81:72:49: 32:53:08:4c:f5:46:8a:b4:01:36:8e:38:5f:aa:30: 84:4a:77:f0:3a:ef:29:e1:60:12:73:03:04:6f:90: e8:f2:d7:52:d6:c1:d6:b2:90:0b:43:0c:9a:fd:8a: b3:1f:be:79:7d:2e:5a:0d:73:1d:b5:00:65:d9:79: 7d:df:c8:22:66:46:ac:0e:00:25:26:c9:81:c4:61: 90:63:a6:ab:ff:dc:c9:fb:59:87:24:9b:b8:3e:39: 07:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C9:2D:8B:02:51:89:A5:8F:5C:71:08:42:19:4A:F6:CB:74:7B:15 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:59:86:84:f8:09:f7:ee:a6:f4:2b:65:c5:cd:5e:fc:b7:ee: 33:f3:bf:1d:69:9f:00:55:08:a8:01:e0:62:c2:9d:bb:0e:2f: 13:4a:03:47:a7:0c:36:88:a1:aa:67:36:34:65:dc:e5:f5:3a: f1:e2:6a:51:d0:10:fd:46:17:89:90:23:87:25:68:71:f6:5f: f2:c1:1f:28:bb:01:2f:91:80:0b:3a:1f:d1:e1:d5:4f:4e:74: 08:f6:84:c5:10:e8:c0:e4:c5:be:40:83:3f:2f:2e:79:dc:e8: e6:e7:68:bf:df:0d:6e:1a:dc:80:c8:ac:a5:b4:48:13:a6:84: 22:56:08:16:33:80:b9:c2:54:69:37:01:5e:62:a2:bd:db:48: 4c:77:0b:a2:fb:27:2c:2f:55:4d:0b:6f:aa:e2:48:9e:79:d3: 34:e4:1e:8c:b8:58:a1:f8:83:b3:38:cd:25:c4:14:04:a9:a6: a7:e5:9c:1c:5b:19:7a:f4:6b:cb:13:77:14:7f:08:f8:e7:4f: 83:df:d8:c5:1f:a6:b6:d9:6d:4a:f8:97:1a:37:3d:4c:f7:2e: f6:c5:19:b1:52:52:45:1a:2e:5e:3e:f5:e7:28:ab:94:88:09: 43:c6:ee:40:cc:e7:2f:0a:f6:51:4c:39:9a:cc:ca:c1:8d:b4: bc:d7:28:83 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSm+1Ec8wm3A7Cx7mg19ozQzBjTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTA4MjIwMzM1NTZaFw0yNTA4MjUwOTUzNTZaMDMxMTAvBgNV BAMTKEYxQzkyRDhCMDI1MTg5QTU4RjVDNzEwODQyMTk0QUY2Q0I3NDdCMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSGR5XnORYV92Vyqqi1LwZmj3k QfcF2fybeTIFDKTsTgS5sR1nReXnyAk4l1hln/pwf/Z/Sd+ZuMJy8LQJggidB7as stSBZXv5jJxCnuGKvQO2Xuts5wzTzMDQSpKs+FW41nebyu7Wu0763Mv6GHEpVad8 piux0ryEi0kOcUmFBdCBo+b0xEcW0V+w2D+XzfqmG08MPd4zjhoZztQehouF+4Fy STJTCEz1Roq0ATaOOF+qMIRKd/A67ynhYBJzAwRvkOjy11LWwdaykAtDDJr9irMf vnl9LloNcx21AGXZeX3fyCJmRqwOACUmyYHEYZBjpqv/3Mn7WYckm7g+OQfHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8cktiwJRiaWPXHEIQhlK9st0exUwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKJZhoT4CffupvQrZcXNXvy37jPzvx1pnwBV CKgB4GLCnbsOLxNKA0enDDaIoapnNjRl3OX1OvHialHQEP1GF4mQI4claHH2X/LB Hyi7AS+RgAs6H9Hh1U9OdAj2hMUQ6MDkxb5Agz8vLnnc6ObnaL/fDW4a3IDIrKW0 SBOmhCJWCBYzgLnCVGk3AV5ior3bSEx3C6L7JywvVU0Lb6riSJ550zTkHoy4WKH4 g7M4zSXEFASppqflnBxbGXr0a8sTdxR/CPjnT4Pf2MUfprbZbUr4lxo3PUz3LvbF GbFSUkUaLl4+9ecoq5SICUPG7kDM5y8K9lFMOZrMysGNtLzXKIM= -----END CERTIFICATE-----Generated at Sat Aug 23 10:35:19 2025 by rpki-client